Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
setting.php in Innovative CMS (ICMS, formerly Imoel-CMS) contains username and password information in cleartext, which might allow attackers to obtain this information via a direct request to setting.php. NOTE: on a properly configured web server, it would be expected that a .php file would be processed before content is returned to the user, so this might not be a vulnerability.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Innovative CMS setting.php 信息泄露漏洞
Vulnerability Description
Innovative CMS (ICMS,原来的Imoel-CMS) 中的setting.php的cleartext中包含用户名和密码信息,攻击者可能通过直接请求setting.php获取此信息。
CVSS Information
N/A
Vulnerability Type
N/A